From 09741e1f2820ecfa3d4d9574da59313e422c045b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 27 Oct 2025 12:47:23 +0000 Subject: [PATCH] Bump the actions-on-main-branch group across 1 directory with 5 updates Bumps the actions-on-main-branch group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `4` | `5` | | [actions/setup-java](https://github.com/actions/setup-java) | `4` | `5` | | [gradle/actions](https://github.com/gradle/actions) | `4` | `5` | | [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4` | `5` | | [actions/download-artifact](https://github.com/actions/download-artifact) | `4` | `6` | Updates `actions/checkout` from 4 to 5 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v4...v5) Updates `actions/setup-java` from 4 to 5 - [Release notes](https://github.com/actions/setup-java/releases) - [Commits](https://github.com/actions/setup-java/compare/v4...v5) Updates `gradle/actions` from 4 to 5 - [Release notes](https://github.com/gradle/actions/releases) - [Commits](https://github.com/gradle/actions/compare/v4...v5) Updates `actions/upload-artifact` from 4 to 5 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/v4...v5) Updates `actions/download-artifact` from 4 to 6 - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](https://github.com/actions/download-artifact/compare/v4...v6) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-on-main-branch - dependency-name: actions/setup-java dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-on-main-branch - dependency-name: gradle/actions dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-on-main-branch - dependency-name: actions/upload-artifact dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-on-main-branch - dependency-name: actions/download-artifact dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-on-main-branch ... Signed-off-by: dependabot[bot] --- .github/workflows/auto-pr-reusable.yaml | 4 ++-- .github/workflows/auto-translate-docs-reusable.yml | 2 +- .github/workflows/vuln-check-reusable.yaml | 12 ++++++------ 3 files changed, 9 insertions(+), 9 deletions(-) diff --git a/.github/workflows/auto-pr-reusable.yaml b/.github/workflows/auto-pr-reusable.yaml index 94bdc3e..179c00f 100644 --- a/.github/workflows/auto-pr-reusable.yaml +++ b/.github/workflows/auto-pr-reusable.yaml @@ -20,7 +20,7 @@ jobs: PR_TITLE: ${{ github.event.pull_request.title }} steps: - name: Checkout auto-pr scripts - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: repository: scalar-labs/actions sparse-checkout: auto-pr-script @@ -28,7 +28,7 @@ jobs: path: auto-pr - name: Checkout the target repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: # This is necessary to avoid unexpected auto-merge in git cherry-pick fetch-depth: 0 diff --git a/.github/workflows/auto-translate-docs-reusable.yml b/.github/workflows/auto-translate-docs-reusable.yml index 956aa18..5956b50 100644 --- a/.github/workflows/auto-translate-docs-reusable.yml +++ b/.github/workflows/auto-translate-docs-reusable.yml @@ -26,7 +26,7 @@ jobs: if: github.event.pull_request.merged == true || github.event_name == 'workflow_dispatch' || github.event_name == 'workflow_call' steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: fetch-depth: 0 token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/vuln-check-reusable.yaml b/.github/workflows/vuln-check-reusable.yaml index 2ca1f09..f6cbf76 100644 --- a/.github/workflows/vuln-check-reusable.yaml +++ b/.github/workflows/vuln-check-reusable.yaml @@ -49,7 +49,7 @@ jobs: steps: - name: Checkout vuln-check scripts - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: repository: scalar-labs/actions sparse-checkout: vuln-check-script @@ -82,18 +82,18 @@ jobs: fi - name: Checkout the target repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: ref: ${{ steps.prepare-target-ref.outputs.target-ref }} - name: Set up JDK 8 - uses: actions/setup-java@v4 + uses: actions/setup-java@v5 with: java-version: '8' distribution: 'temurin' - name: Setup Gradle - uses: gradle/actions/setup-gradle@v4 + uses: gradle/actions/setup-gradle@v5 - name: Docker build run: ./gradlew docker @@ -120,7 +120,7 @@ jobs: done - name: Upload images as artifact - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 with: name: docker-images-${{ github.run_id }}-${{ github.run_attempt }}-${{ inputs.target-ref }} path: images_output @@ -152,7 +152,7 @@ jobs: fi - name: Download Docker images artifact - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 with: name: docker-images-${{ github.run_id }}-${{ github.run_attempt }}-${{ inputs.target-ref }}